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£4 We are pleased to see 
these two providers of 
proactive security come 
together in what is a natural 
technology partnership. 
The merging of Qualys’ 
results with RedSeal’s 
appliance makes high 
priority risk information 
quick and easy to identify, 
significantly reducing our 
time to remediation. It 
allows our security team 
to focus on keeping our 
systems as secure as 
they can be.?? 


Brad Robinson, Security Manager 
Postini Inc. 
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RISK MANAGEMENT AND THREAT VISUALIZATION 
WITH QUALYSGUARD AND REDSEAL 


Integration of Redseal SRM with QualysGuard gives enterprises the ability to model their 
network topology, determine what vulnerabilities are present on their network and under- 
stand which vulnerable systems can actually be accessed based upon the network traffic 
filtering policies. All of this information is used to ultimately measure risk for asset groups 
and prioritize remediation. 


Assess Exposure of Business Assets 

QualysGuard excels at detecting vulnerabilities on any device connected to the network. 
When these vulnerabilities are overlaid on the network topology and traffic flow model 
generated by Redseal SRM, the exposure of business assets to threats can be determined. 
This allows an enterprise to assess its security posture. 


Mitigate Threats 

The integration allows an enterprise to identify systems and networks that pose the 
highest threat to business assets. These threats can then be mitigated through traffic 
filtering and patching of vulnerable systems. 


Prioritize remediation of vulnerabilities 

A mature security process requires remediation of all vulnerabilities within an enterprise. 
However, several factors such as lack of resources, pre-production staging procedures 
and compatibility issues can delay the remediation process. A risk analysis performed 
using QualysGuard and Redseal SRM determines the actual risk posed by vulnerabilities 
to an enterprise. This enables the enterprise to focus its resources on mitigating 
vulnerabilities that provide the greatest reduction in risk. 
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Integration: Risk Management and Threat Visualization with QualysGuard and RedSeal 


How it Works 


Integration of Redseal SRM with QualysGuard allows customers to import QualysGuard 
scan reports of their network into Redseal SRM using QualysGuard API or XML reports. 
Redseal SRM collects configuration files from networking devices such as routers, firewalls 
and switches. This configuration information in conjunction with the host and application 
information from QualysGuard is used to model a network map of the enterprise. Networks 
which the enterprise has little or no control over, such as guest networks or even the 
Internet can be categorized as untrusted. The threat that untrusted sources pose to 
business assets can then be analyzed based on the vulnerabilities (reported by QualysGuard) 
on intermediate systems and the traffic filtering policies (ACLs) between the systems. 
Interactive threat and risk maps can be used to visualize the threat of untrusted sources 
and vulnerable systems to other assets. 
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Figure 1: Prioritizing Risk Remediation 


Each enterprise has its own policy to evaluate and prioritize remediation of vulnerabilities. 
For example, an enterprise might mandate remediation of those vulnerabilities which pose 
the most downstream risk because they can be leveraged by worms to attack other 
systems in the network. Figure 1 above shows a vulnerability which exists on two systems 
and is rated as Medium severity by QualysGuard. However, running a risk analysis against 
the network reveals that the vulnerability poses a higher downstream risk on AppNet1Serv5 
than AppNet1Serv23 because the ACLs on the routers and firewalls in the network allow 
the vulnerability on AppNet1Serv5 to be exploited from more networks. This helps the sys- 
tem administrator determine that AppNet1Serv5 should be patched before AppNet1 Serv23. 


For more information about deploying this solution, visit www.qualys.com/integrations. 
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About Redseal 

RedSeal Systems develops innovative 
security risk management (SRM) 
software designed to streamline and 
automate the security management life- 
cycle. RedSeal’s solutions enable 
companies to quantify overall security, 
assess critical areas of risk and validate 
that their security infrastructure suc- 
cessfully stops attacks. With RedSeal, 
enterprises can measure and reduce 
security risks, increase responsiveness 
to business demands, and reduce 
operational costs. More information 
can be found at www.redseal.net. 


About Qualys 

Qualys, Inc., the leader in on demand 
vulnerability management and policy 
compliance serves thousands subscribers 
around the world including 200 of the 
Forbes Global 2000. QualysGuard 
Software as a Service (SaaS) solutions 
help security managers effectively 
strengthen the security of their networks, 
conduct automated security audits and 
ensure compliance with internal policies 
and external regulations. Qualys’ cost 
effective on demand technology requires 
no capital outlay, infrastructure or main- 
tenance and can be deployed in a matter 
of hours anywhere in the world. Qualys 
global customers include AXA, DuPont, 
eBay, ICI Ltd, Kaiser Permanente, 
Novartis, Oracle and many others. 
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